Cyber Incident Response Lead
hace 6 meses
Full-time
Employee Status: Regular
Role Type: Home
Department: Legal & Compliance
Schedule: Full Time
Shift: Day Shift
**Company Description**:
Experian is the world’s leading global information services company. During life’s big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.
We have 20,000 people operating across 44 countries and every day we’re investing in new technologies, talented people, and innovation to help all our clients maximize every opportunity.
As a member of Experian’s Global Security Office (EGSO) - Global Cyber Incident Response Team, (GCIRT) this individual will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Centre (CFC) according to Experian’s Incident Response Plan. The member will respond and analyze security incidents involving threats targeting Experian information assets. These threats may include phishing, malware, network attacks, suspicious activity, etc. In addition, this position will involve working with end-users, stakeholders, technical support teams, and management to ensure proper remediation and recovery from these threats. Leverages analytical skills using data collected from endpoints, environmental logging, and a variety of other sources to maximize containment and eradication of threats, while expediting recovery of the business. This individual will be responsible for driving the Incident Response teams SLO Goals and performance, working to improve Incident Response process documentation, and coordinating training of team. They will be accountable for the overall Incident Response tower personnel management strategy.
This position reports to the CFC Sr. Manager Cyber Incident Response.
**Key Responsibilities Include**:
The Team Lead executes Operational Processes and Procedures as a matter of daily responsibility. The role is the detailed and repeatable execution of all operational tasks which are documented in the Wiki and Incident Response Plan.
- Respond to Security to cyber security events and alerts associated to threats, intrusions, and-or compromises per SLO.
- Effectively manages multiple cases related to security incidents throughout the incident response lifecycle; including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
- Identifies best methods to contain, eradicate, and recover from a wide variety of security incidents. Provides recommendations to proactively prevent incidents from re-occurring in the future.
- Coordinates successful conclusion of security incidents according to Process & Procedures. Escalates severe incidents according to Experian’s Incident Response Plan.
- Maintains all case documentation, including notes, analysis findings, containment steps, and root cause for each assigned security incident.
- Maintains a foundational understanding of common Operating Systems (Windows, Linux, Mac OS), Networking (Firewalls, Proxies, etc.), and Security Technologies (Anti-Virus, Intrusion Prevention, etc.)
- Follow all documented GCIRT playbooks, standards, processes, and procedures (GCIRT xWiki). All cases owned by an Analyst shall be well documented in accordance with GCIRT standards.
- Frequently attend and participate in the CFC Weekly Lessons Learned Meetings. Contribute at least two (2) items to the CFC Weekly Meeting Lessons Learned per Month.
- Maintain GCIRT Shift Logs for period worked. Verify Shift Logs are completed and accurate by L1 analysts.
- All assigned security incidents must be reviewed, updated, and documented at least every (3) business days. Coordinate coverage for any cases which need update while out on leave or holiday.
- Incident updates or contact with end user to be done every 24 hours and documented case notes.
- Maintain assigned case load and efficiently move incidents through each phase of the IR Lifecyle with a goal to complete cases within 5 business days.
- Follow case hand-off procedure, assisting other GCIRT Team Members with their caseload while they are off shift.
- Provide Advanced Support as needed to other GCIRT Analysts (Logs review, IP Block question). Mentor other GCIRT analyst when required (process question, tool usage)
- Leads local resources to ensure team meets SLOs and follows Incident Response Process, Procedures & Playbooks.
- Supports overall direction for the GCIRT and input to the overall security strategy.
- Work with GCIRT team to resolve any case discrepancies or breach of SLOs, including:
- Unresolved GCIRT Cases exceeding SLOs and make sure to assist other analysts with their case
-
Cybersecurity Technical Team Lead
hace 6 meses
Heredia, Costa Rica Sysco Costa Rica A tiempo completo**Requirements**: - Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring. - Work collaboratively with other cybersecurity teams and business units. - Drive the implementation of emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of the attack. -...
-
Cfc Cti Cyber Threat Hunter
hace 6 meses
Heredia, Costa Rica Experian A tiempo completoFull-time Employee Status: Regular Role Type: Hybrid Department: Legal & Compliance Schedule: Full Time Shift: Day Shift **Company Description**: Experian is the world’s leading global information services company. During life’s big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new...
-
Cfc Cti Expert Cyber Threat Hunter
hace 7 meses
Heredia, Costa Rica Experian A tiempo completoCompany Description Experian is the world’s leading global information services company. During life’s big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control...
-
Incident Response Support Coordinator
hace 6 meses
Heredia, Costa Rica Experian A tiempo completo**Company Description** About us, but we’ll be brief** Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses, and society. We are thrilled to share that **FORTUNE has named Experian one of the 100 Best Companies to work for**. In addition, for the last five...
-
Incident Response Support Coordinator
hace 6 meses
Heredia, Costa Rica Experian A tiempo completoFull-time Employee Status: Regular Role Type: Home Department: Customer Service Schedule: Full Time **Company Description**: **About us, but we’ll be brief** Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses, and society. We are thrilled to share...
-
Analyst - Cyber Security and Audit Specialist
hace 6 meses
Heredia, Costa Rica FusionHit A tiempo completo**Job Duties**: - Implement and maintain GRC frameworks like PCI DSS, SOC 2, and SOC 1, ensuring compliance with current standards. - Manage cybersecurity policies, conduct risk and vulnerability assessments to safeguard information assets. - Lead and coordinate internal and external audit processes, including collaboration with stakeholders. - Develop and...
-
Cybersecurity Tier 2
hace 6 meses
Heredia, Costa Rica Sysco Costa Rica A tiempo completoCyber Security Analyst is responsible for the real-time identification and alerting of information security events that pose an immediate risk to Sysco’s employees, customers, suppliers, shareholders, partners, or business operations. **Requirements**: - Cybersecurity SOC Tier 2 analyst must be able to do the following: - Correlate threat data from...
-
Intern
hace 6 meses
Heredia, Costa Rica Moody's A tiempo completoFunctional Responsibilities: - Investigate security incidents and events, using SIEM and other tools; collect evidence and work with different teams to isolate and/or remediate as necessary. - Analyze, correlate and action on data from subscription and public cyber intelligence services, develop tactics to combat future threats. - Communicate and escalate...
-
HR Generalist-bilingue
hace 6 meses
Heredia, Costa Rica Grupo Preselección A tiempo completo**We’d love to hear from people with** Ability to work in a dynamic, on call environment. Advanced English Level. 5+ years of professional experience in cybersecurity and/or information security or demonstrated equivalent capability. Hands-on experience working in cyber incident analysis and/or response in medium to large organizations with cloud and...
-
Lead Incident Manager
hace 6 meses
Heredia, Costa Rica Experian A tiempo completoFull-time Employee Status: Regular Role Type: Hybrid Department: Information Technology & Systems Schedule: Full Time Shift: Day Shift **Company Description**: **About us, but we’ll be brief** Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses, and...
-
Cybersecurity QA Lead
hace 6 meses
Heredia, Costa Rica Stryker A tiempo completo**Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: **Who we Want**: - ** Analytical problem...
-
Senior Insider Risk Analyst
hace 7 meses
Heredia, Costa Rica Experian A tiempo completoFull-time Employee Status: Regular Role Type: Hybrid Department: Legal & Compliance Schedule: Full Time Shift: Day Shift **Company Description**: - Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE...
-
Senior Insider Risk Analyst
hace 7 meses
Heredia, Costa Rica Experian A tiempo completo**Company Description** Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. In addition, for the last five years we’ve been named in the 100...
-
Senior Cyber Analyst Mergers and Acquisitions
hace 6 meses
Heredia, Costa Rica Sysco Costa Rica A tiempo completoThis role is responsible for executing Cybersecurity M&A due diligence and leading cyber integration planning, coordination, and reporting while partnering across multiple Cyber, business, and technology cross function teams. **Requirements**: - Execute Cybersecurity M&A due diligence activities partnering with business and technology deal teams to...
-
Principal Engineer Security Services
hace 6 meses
Heredia, Costa Rica 360training A tiempo completo**Principal Engineer Security Services** The Principal Engineer Security Services will play a crucial role in ensuring the ongoing security and protection of our company's information assets. They will be responsible for designing, developing, and overseeing the implementation of cybersecurity solutions to safeguard our systems, networks, and data. The...
-
Application Support Engineer I
hace 6 meses
Heredia, Costa Rica Smarsh A tiempo completo**Who are we?** Smarsh empowers its customers to manage risk and unleash intelligence in their digital communications. Our growing community of over 6500 organizations in regulated industries counts on Smarsh every day to help them spot compliance, legal or reputational risks in 80+ communication channels before those risks become regulatory fines or...
-
Cybersecurity Analyst
hace 6 meses
Heredia, Costa Rica Stryker A tiempo completo**Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: **Who we Want**: - ** Analytical problem...
-
Cybersecurity Tier 3
hace 6 meses
Heredia, Costa Rica Sysco Costa Rica A tiempo completoCyber Security Analyst is responsible for the real-time identification and alerting of information security events that pose an immediate risk to Sysco’s employees, customers, suppliers, shareholders, partners, or business operations. **Requirements**: - Configuring and maintaining monitoring, correlation, and alerting solutions in order to ensure that...
-
Lead Windows Engineer
hace 7 meses
Heredia, Costa Rica Cognizant A tiempo completo**We’re hiring!** At Cognizant we have an ideal opportunity for you to be part of one of the largest companies in the digital sector worldwide. A Great Place To Work where we look for people who contribute new ideas, experiencing a dynamic and growing environment. At Cognizant we promote an inclusive culture, where we value different perspectives...
-
Market Response Specialist
hace 6 meses
Heredia, Costa Rica LSEG (London Stock Exchange Group) A tiempo completoYOU AND YOUR TEAM: The role of a Market Response Specialist is a new one for our office in Costa Rica. We're now building a small team of colleagues with excellent language skills (Portuguese) and drive for creating strong relationships with clients that will lead to sales opportunities. The team members will generate new opportunities for sales by...